轻松背单词新浪微博 轻松背单词腾讯微博
轻松背单词微信服务号
当前位置:首页 -> 11级英语阅读 - > 谷歌发现一批危险网站,只要你访问,你的手机...
谷歌发现一批危险网站,只要你访问,你的手机就被黑了
添加时间:2019-09-20 09:09:11 浏览次数: 作者:未知
Tip:点击数字可快速查看单词解释  
  • Google's Threat Analysis Group (TAG) has published a blog post detailing a number of exploits in iOS that allowed hacked2 websites to hack1 into an iPhone simply if the iPhone visited the site.

    谷歌威胁分析小组(TAG)在博客上详细介绍了一些iOS上的漏洞,iPhone只要访问被黑客入侵的网站,这些网站就能轻易黑进iPhone。

    Once an iPhone did that, malware was installed on the device that allowed the hackers3 to monitor the iPhone's live location every 60 seconds as well as upload virtually any files from the iPhone—including iMessage and WhatsApp messages.

    iPhone一旦访问这些网站,就会被安装恶意软件,黑客每隔60秒就能监控iPhone的实时位置,还可以从iPhone上上传任何文件,包括iMessage和WhatsApp的信息。

    TAG says the exploit "may be one of the largest attacks against iPhone users ever." It reportedly affected4 iPhones running iOS 10 to iOS 12:

    威胁分析小组称这个漏洞“可能是目前针对iPhone用户最大的一个威胁”,据称它会影响iPhone iOS 10到iOS 12的每个版本。

    Working with TAG, we discovered exploits for a total of fourteen vulnerabilities across the five exploit chains: seven for the iPhone's web browser5, five for the kernel6 and two separate sandbox escapes. Initial analysis indicated that at least one of the privilege escalation7 chains was still 0-day and unpatched at the time of discovery.

    我们和威胁分析小组合作发现五个攻击链中共有14个漏洞:其中7个针对iPhone的网络浏览器、5个针对内核,还有2个独立的沙箱逃逸。初步分析表明特权升级链中至少有一个仍然是零日漏洞(指被发现后立即被恶意利用的安全漏洞),而且发现以后没有进行修复。

    There is some good news, however. First, an iPhone user had to visit one of the hacked websites in order for their iPhone to be infected. TAG did not specify8 which websites were hacked, but their report says the sites received "thousands of visitors per week," suggesting the sites received relatively9 minor10 traffic relative to the number of iPhones in the wild.

    但也有好消息。首先iPhone用户需要访问一个被黑的网站才会被攻击,威胁分析小组并未具体说明哪些网站被黑了,但报告中称这些网站“每周有数千访问者”,相比iPhone的使用量来说这些网站的访问量只是很小一部分。

    Further, even if the malware made it onto an iPhone, when a user restarted their iPhone, the malware would be wiped clean in most instances. Of course, news of any exploits in iOS isn't good—no matter how few users were impacted.

    而且即使iPhone被安装了恶意软件,在大多数情况下用户重启手机后恶意软件都会被清理干净。当然任何关于iOS漏洞的消息都不是好消息,即使受影响人数很少。

    The good news is that Apple acted quickly once TAG alerted them to the exploits. TAG says it contacted Apple about the exploits on February 1, 2019, and Apple fixed11 all of the exploits just six days later with the release of iOS 12.1.4 on February 7, 2019.

    好消息是威胁分析小组一提醒苹果公司漏洞的问题,他们就立刻采取了行动,威胁分析小组称在2019年2月1日就漏洞问题联系了苹果公司,该公司仅用6天就修复了所有漏洞,在2019年2月7日发布了iOS 12.1.4。

     11级    双语 
     单词标签: hack  hacked  hackers  affected  browser  kernel  escalation  specify  relatively  minor  fixed 


    点击收听单词发音收听单词发音  

    1 hack [hæk] BQJz2   第9级
    n.劈,砍,出租马车;vt.劈,砍,干咳;vi.砍
    参考例句:
    • He made a hack at the log. 他朝圆木上砍了一下。
    • Early settlers had to hack out a clearing in the forest where they could grow crops. 早期移民不得不在森林里劈出空地种庄稼。
    2 hacked [hækt] FrgzgZ   第9级
    生气
    参考例句:
    • I hacked the dead branches off. 我把枯树枝砍掉了。
    • I'm really hacked off. 我真是很恼火。
    3 hackers ['hækərz] dc5d6e5c0ffd6d1cd249286ced098382   第9级
    n.计算机迷( hacker的名词复数 );私自存取或篡改电脑资料者,电脑“黑客”
    参考例句:
    • They think of viruses that infect an organization from the outside.They envision hackers breaking into their information vaults. 他们考虑来自外部的感染公司的病毒,他们设想黑客侵入到信息宝库中。 来自《简明英汉词典》
    • Arranging a meeting with the hackers took weeks againoff-again email exchanges. 通过几星期电子邮件往来安排见面,他们最终同意了。 来自互联网
    4 affected [əˈfektɪd] TzUzg0   第9级
    adj.不自然的,假装的
    参考例句:
    • She showed an affected interest in our subject. 她假装对我们的课题感到兴趣。
    • His manners are affected. 他的态度不自然。
    5 browser [ˈbraʊzə(r)] gx7z2M   第8级
    n.浏览者
    参考例句:
    • View edits in a web browser. 在浏览器中看编辑的效果。
    • I think my browser has a list of shareware links. 我想在浏览器中会有一系列的共享软件链接。
    6 kernel [ˈkɜ:nl] f3wxW   第9级
    n.(果实的)核,仁;(问题)的中心,核心
    参考例句:
    • The kernel of his problem is lack of money. 他的问题的核心是缺钱。
    • The nutshell includes the kernel. 果壳裹住果仁。
    7 escalation [ˌeskə'leɪʃn] doZxW   第7级
    n.扩大,增加
    参考例句:
    • The threat of nuclear escalation remains. 核升级的威胁仍旧存在。 来自辞典例句
    • Escalation is thus an aspect of deterrence and of crisis management. 因此逐步升级是威慑和危机处理的一个方面。 来自辞典例句
    8 specify [ˈspesɪfaɪ] evTwm   第7级
    vt.指定,详细说明
    参考例句:
    • We should specify a time and a place for the meeting. 我们应指定会议的时间和地点。
    • Please specify what you will do. 请你详述一下你将做什么。
    9 relatively [ˈrelətɪvli] bkqzS3   第8级
    adv.比较...地,相对地
    参考例句:
    • The rabbit is a relatively recent introduction in Australia. 兔子是相对较新引入澳大利亚的物种。
    • The operation was relatively painless. 手术相对来说不痛。
    10 minor [ˈmaɪnə(r)] e7fzR   第7级
    adj.较小(少)的,较次要的;n.辅修学科;vi.辅修
    参考例句:
    • The young actor was given a minor part in the new play. 年轻的男演员在这出新戏里被分派担任一个小角色。
    • I gave him a minor share of my wealth. 我把小部分财产给了他。
    11 fixed [fɪkst] JsKzzj   第8级
    adj.固定的,不变的,准备好的;(计算机)固定的
    参考例句:
    • Have you two fixed on a date for the wedding yet? 你们俩选定婚期了吗?
    • Once the aim is fixed, we should not change it arbitrarily. 目标一旦确定,我们就不应该随意改变。

    文章评论 共有评论 0查看全部

      会员登陆
      热门单词标签
    我的单词印象
    我的理解: